Privacy Policy

Effective: April 2025 · Last reviewed: June 2026

UniPass is a local-first, zero-knowledge password manager. By design we do everything we can to minimize the data we can see — because data we can see is data that can leak.

In short

What we collect

Without cloud sync (local mode)

Nothing. Your master password, vault contents, Secret Key, device identifiers, and IP address never leave your device. The only outbound request is optional favicon fetching (see below).

With cloud sync enabled

Only the following is uploaded to our sync server:

CategoryUploaded?Notes
Master passwordNoNever leaves the device; the server only sees an Argon2id-derived auth hash (irreversible).
Vault records (logins, notes, cards, etc.)Ciphertext onlyOpaque AES-256-GCM blobs; the server has no key to decrypt them.
Secret Key (recovery code)NoGenerated at sign-up, stored only in the device Keychain.
Sync metadataYesAccount email, device name/type, sync timestamps, record version numbers.
Usage analytics / telemetryNoNo analytics SDKs integrated (no Sentry / Firebase / GA / Mixpanel).
Crash reportsNoNo crash reporting integrated.
Client IPTransientKept only in web access logs as operationally needed; not written to the user database.
FaviconsSee belowFetched on demand from the target site's public favicon; requests carry no vault content.

We never upload your master password or any derived key, plaintext vault content, or your browser history, clipboard, or filenames.

Enabling cloud sync is an explicit action — you must enter a server URL and confirm under Settings → Cloud Sync in the desktop app.

The browser extension

The Chrome extension is a companion to the desktop app. It detects login forms and fills credentials only when you act on a page. Credentials travel only between the extension and the local desktop app via your operating system's Native Messaging channel — never over the network to us. The extension contains no analytics and sends no browsing data anywhere.

Third-party services

UniPass communicates with no other third-party services.

Where data is stored

All local data lives in the standard OS user-data directory:

The database is encrypted with SQLCipher using a key derived from your master password. OS file permissions (0600) prevent other users from reading it.

Data deletion

Children's privacy

UniPass is not directed to children under 13 and does not knowingly collect personal data from minors.

Changes

Revisions to this policy are announced in the project's release notes. Material changes will be communicated to users in advance.

Contact